At TeamRetro, we understand the paramount importance of data security and compliance for our valued customers. We are pleased to announce that we are SOC 2 Type I and Type 2 compliant. You can also get a copy of our SOC 3 report.
Specifically: TeamRetro is SOC 2 Type 2 accredited for Security, Confidentiality, and Privacy. An independent auditor has evaluated our policies, product, platform, and infrastructure in accordance with the Standard on Assurance Engagements (ASAE 3150) and verified that TeamRetro complies with their stringent requirements.
Achieving this standard with an unqualified opinion provides a third-party industry validation that TeamRetro provides enterprise-level security for customers’ data.
The independent audit was conducted by Assurance Lab following the SSAE 18, ISAE/ASAE 3402, and GS 007 standards. Their accredited reports were provided through their AICPA Partners, a leading association for accounting professionals.
An unqualified opinion on a SOC 2 Type 2 audit report demonstrates to TeamRetro’s current and future customers that TeamRetro manages customer data with adherence to the highest security and compliance standard. Information security practices, policies, procedures, and operations meet the SOC 2 standards for security.
Our ongoing SOC 2 compliance is supported by Tugboat Logic (OneTrust), a leader in security and compliance attestation for B2B SaaS companies worldwide.
We also uphold the principles of the General Data Protection Regulation (GDPR), providing our customers the choice to host in either the US or the EU.
Here are some of the ways we keep your data secure and maintain your confidentiality and privacy.
- TeamRetro’s cloud ensures security with complete logical customer isolation in modern architecture. TeamRetro’s cloud leverages the native physical and network security features of the cloud service and relies on the providers to maintain the infrastructure, services, and physical access policies and procedures.
- All data is also encrypted at rest and in transmission to prevent unauthorized access and data breaches.
- We implement role-based access controls and the principles of least privileged access and revoke access as needed.
Enterprise clients interested in receiving a copy of our SOC 2 Type 2 or Type 3 report can do so at https://www.teamretro.com/security.
TeamRetro is an enterprise-ready online retrospective tool for remote teams. Our guided retrospectives and health checks ensure productive and effective meetings – every single time. We’re SOC 2 Type 2, GDPR compliant, and ready to help agile leaders and teams drive continuous improvement.